CVE-2019-11414

An issue was discovered on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.

Published : 2019-04-22 11:29 Updated : 2019-04-22 20:17

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Intelbras Iwr 3000n Firmware 1.5.0 cpe:/o:intelbras:iwr_3000n_firmware:1.5.0
  1. Intelbras (1) Search CVE
    1. Iwr 3000n Firmware (1) Search CVE
      1. 1.5.0

CWE

ID Name Description Links
CWE-640 Weak Password Recovery Mechanism for Forgotten Password The software contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak. CVE

History of changes

Date Event
2019-04-22 20:17
2019-04-22 11:29

New CVE